Lucene search
UbuntuUSN-226-1HistoryDec 10, 2005 - 12:00 a.m.
Courier vulnerability
2005-12-1000:00:00
ubuntu.com
32
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.0%
Releases
- Ubuntu 5.10
- Ubuntu 5.04
- Ubuntu 4.10
Details
Patrick Cheong Shu Yang discovered a flaw in the user account handling
of courier-authdaemon. After successful authorization, the Courier
mail server granted access to deactivated accounts.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 5.10 | noarch | courier-authdaemon | < * | UNKNOWN |
| Ubuntu | 5.04 | noarch | courier-authdaemon | < * | UNKNOWN |
| Ubuntu | 4.10 | noarch | courier-authdaemon | < * | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 4.10 / 5.04 / 5.10 : courier vulnerability (USN-226-1)
2006-01-21 00:00:00
Debian DSA-917-1 : courier - programming error
2006-10-14 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-917-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 917-1 (courier)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2005-3532
2005-12-11 01:00:00
debiancve
debiancve
CVE-2005-3532
2005-12-11 01:03:00
nvd
nvd
CVE-2005-3532
2005-12-11 01:03:00
cve
cve
CVE-2005-3532
2005-12-11 01:03:00
debian
debian
[SECURITY] [DSA 917-1] New courier packages fix unauthorised access
2005-12-08 10:26:15
[SECURITY] [DSA 917-1] New courier packages fix unauthorised access
2005-12-08 10:26:15
osv
osv
courier - programming error
2005-12-08 00:00:00
ubuntucve
ubuntucve
CVE-2005-3532
2005-12-11 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.2 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.0%
Related for USN-226-1